China-linked cyber-espionage actors tracked as ‘Bronze Butler’ (Tick) exploited a Motex Lanscope Endpoint Manager vulnerability as a zero-day to deploy an updated version of their Gokcpdoor malware. The discovery of this activity comes from Sophos researchers, who observed the threat actors exploiting the vulnerability in mid-2025 before it was patched to steal confidential information. The
The Practitioner’s Guide to Microsoft 365 Security
Resources & Guides Microsoft 365 offers powerful built-in security features, but misconfigurations or disabled security settings can leave any organization vulnerable. Our latest guide provides a deep dive on the top 5 Microsoft 365 security checks that every IT and security team should review. For each recommendation, we cover: Common misconfigurations to look out for
Practitioner’s Guide to Google Workspace Security
Resources & Guides Google Workspace is a powerful platform, but misconfigurations or disabled security settings can leave any organization vulnerable. Our latest guide provides a deep dive on the top 5 Google Workspace security settings that every IT and security team should review. For each security setting, we cover: Common misconfigurations to look out for
Australia warns of BadCandy infections on unpatched Cisco devices
The Australian government is warning about ongoing cyberattacks against unpatched Cisco IOS XE devices in the country to infect routers with the BadCandy webshell. The vulnerability exploited in these attacks is CVE-2023-20198, a max-severity flaw that allows remote unauthenticated threat actors to create a local admin user via the web user interface and take over
‘We got hacked’ emails threaten to leak University of Pennsylvania data
The University of Pennsylvania suffered a cybersecurity incident on Friday, where students and alumni received a series of offensive emails from various University email addresses, claiming that data was stolen in a breach. The emails have a subject line of “We got hacked (Action Required)” and claim that data was stolen during an alleged breach, also
Microsoft Edge gets scareware sensor for faster scam detection
Microsoft is introducing a new scareware sensor for the Microsoft Edge web browser, which helps detect scam pages more quickly and ensures that Defender SmartScreen blocks them faster. In scareware scams (also known as tech support scams), fraudsters use aggressive landing pages to trick potential victims into believing that their devices have been compromised with